You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
signing transparency
About this tag
Signing transparency combines cryptographic signing with an append-only ledger to make software signing verifiably accountable. Microsoft's preview of Signing Transparency for Azure uses confidential hardware, auditable receipts, countersigned COSE envelopes, and Merkle-based inclusion proofs that anyone can validate independently. This approach addresses modern supply chain security by providing verifiable evidence that a signature was created and recorded. The tag covers discussions about implementing signing transparency in Azure and related cryptographic verification methods.
Microsoft’s preview of Signing Transparency for Azure is an important and practical step toward making software signing verifiably accountable across modern supply chains — it pairs traditional cryptographic signing with an append‑only transparency ledger and confidential hardware to provide...